Gruntwork
Session manager as a bastion host? #562
-
|
Is there a way to replace the Bastion Host in an existing 'Reference Architecture' with AWS Systems Manager Session Manager? |
Beta Was this translation helpful? Give feedback.
Replies: 1 comment
-
|
Yes this is possible since the Session Manager uses an SSH connection through the outbound calls. This means that as long as you install and set up Session Manager on your servers, you can SSH into it without a bastion. With that said, we do not currently have modules that officially support setting up Session Manager, so you will have to look into the AWS docs to figure out how to update the AMI and boot scripts to support this. |
Beta Was this translation helpful? Give feedback.
Yes this is possible since the Session Manager uses an SSH connection through the outbound calls. This means that as long as you install and set up Session Manager on your servers, you can SSH into it without a bastion.
With that said, we do not currently have modules that officially support setting up Session Manager, so you will have to look into the AWS docs to figure out how to update the AMI and boot scripts to support this.